Looking for a
Vulcan Cyber alternative?
Vulcan Cyber was acquired by Tenable in February 2025 and is being absorbed into Tenable One. If you chose Vulcan for vendor-neutral, scanner-agnostic risk-based vulnerability management, Centraleyezer keeps that promise — 40+ scanner integrations, contextual (not CVSS-weighted) risk scoring, EU-hosted or fully self-hosted, with public pricing.
Vulcan (now Tenable One) vs Centraleyezer
Competitor details from vendor-published pages, July 2026. Evaluate against your own requirements.
Migrating in four steps
Reconnect your scanners
Point Centraleyezer at the same sources Vulcan aggregated — API credentials for Nessus, Tenable SC, Qualys, Rapid7, Burp Enterprise, AWS Inspector and more, or scheduled XML/JSON/CSV imports for everything else.
Import assets and criticality
Bring assets in from scans or CSV inventory imports, then set business criticality — one of the six factors the risk model uses.
Rebuild automations
Recreate SLA policies, risk-acceptance rules, and report schedules; the full REST API covers ticketing and custom workflows.
Run in parallel for 30 days
The fully-featured trial lets you compare queues side-by-side before switching off the old platform.
Common questions
What happened to Vulcan Cyber?
Tenable completed its acquisition of Vulcan Cyber in February 2025. vulcan.io now redirects to tenable.com, and Vulcan’s capabilities are being folded into Tenable One — Tenable’s own exposure management platform.
Why look beyond Tenable One as a Vulcan replacement?
Vulcan’s appeal was scanner-agnostic aggregation from an independent vendor. Inside Tenable One, prioritisation and roadmap naturally centre on Tenable’s own scanning ecosystem and its proprietary VPR score. If vendor-neutral aggregation, EU data residency, self-hosting, or transparent pricing mattered to you, they are worth re-evaluating rather than migrating by default.
Can Centraleyezer import the scanner data Vulcan used to aggregate?
Yes. Centraleyezer ingests 40+ scanners — Nessus and Tenable Security Center included, alongside Qualys VMDR, Rapid7 InsightVM, Burp Suite, AWS Inspector, Wazuh, Trivy and more — via API connections and XML/JSON/CSV imports with configurable field mappings.
How does Centraleyezer’s scoring differ from Vulcan’s or Tenable VPR?
Both Vulcan and Tenable VPR are built around CVSS/EPSS/threat-intel weightings. Centraleyezer instead scores each finding on six contextual factors — DREAD, asset criticality, network exposure, exploitability in your environment, CTI signals, and a human/AI feedback loop. CVSS and EPSS are preserved on findings for reference, but they don’t drive the queue.
How long does a migration take?
Connect your scanners (API credentials or scheduled file imports), map assets and criticality, and the prioritised queue builds from the first import — typically within days, not months. A 30-day full-featured trial covers a complete parallel run.
Is there an EU-hosted or self-hosted option?
Both. The SaaS tier is hosted in the European Economic Area, and Enterprise/MSSP deployments are self-hosted Docker — including fully air-gapped environments.
Related: how contextual RBVM works · all 40+ scanner integrations · self-hosted deployment